> On Tue, 2021-08-10 at 04:32 -0700, latin...@vcn.bc.ca wrote: >> > On Aug 10 01:52:57, latin...@vcn.bc.ca wrote: >> > > > - smtpd had its first commit in 2008 and back then was far from >> > > >  production ready: So are you using base smtpd, or sendmail, or >> > > >  something else? >> > > >> > > Yes, 2000 it was sendmail, nginx, apache, smtpd if i remember >> correctly; >> > > but my question is: >> > > >> > > "Could someone please point me to specific openbsd place to look for >> > > it?" >> > >> > To look for what? smtpd documentation? man smtpd, man spmtpd.conf, >> > there's a dkim example right there. >> >> Jay in this case it looks out of context, because it is a question after >> the explanation! Look for understandable (my level) information related >> to >> dkim, dmarc, and spf! My field is agriculture! >> >> > >> > > > - I assume it's related to outbound mail, but even that is not >> > > >  completely clear to me. >> > > >> > > No, it is the complete behaviour of dkim, dmarc, and spf. i got 0/10 >> at >> > > this page: https://www.mail-tester.com/ and yes, i can receive >> mail, but >> > > mine is considered spam! >> > >> > The fact that and arbitrary third site "tester" gives you this score >> > or another can mean a lot of things. Nobody has seen your DNS or a >> > single line of your conig yet, so it's hard to help you really. >> > >> >> Well, i never said that it is the last word! I am asking for clear >> information for dkim, dmarc, spf, and now dkimproxy and anything related >> to send mail correctly; where correctly means "NO qualify my mail as >> spam" >> >> > > > - Did you just put a dkim txt record in DNS without any additional >> > > >  configuration on your mailserver? >> > > >> > > ok: i have 2 servers: 1. managed by nsd, which obtained 9.7/10 at >> the >> > > same >> > > web page, not a problem; 2. vultr managed by their dns app, here i >> am >> > > not >> > > able to make it work correctly. What should be the additional >> > > configuration on the mail server please? >> > >> > What mail server? >> > What "additional" configuration? >> >> This server: >> > > > - Did you just put a dkim txt record in DNS without any additional >> > > >  configuration on your mailserver? >> >> > >> > If you want help with a mail config, >> > you need to show your mail config. >> > >> >> No problem: >> I am used to use only the base system. >> >> #       $OpenBSD: smtpd.conf,v 1.14 2019/11/26 20:14:38 gilles >> Exp $ >> >> # This is the smtpd server system-wide configuration file. >> # See smtpd.conf(5) for more information. >> >> table aliases file:/etc/mail/aliases >> >> listen on socket >> >> # To accept external mail, replace with: listen on all >> # >> listen on all filter "dkimsign" >> >> action "local_mail" mbox alias <aliases> >> action "outbound" relay >> >> # Uncomment the following to accept external mail for domain >> "example.org" >> # >> # match from any for domain "example.org" action "local_mail" >> match from any for domain "agroena.org" action "local_mail" >> match from local for local action "local_mail" >> match from local for any action "outbound" >> >> # dkim >> filter "dkimsign" proc-exec "filter-dkimsign -d agroena.org -s s1 -k >> /etc/mail/dkim/private.key" user _dkimsign group _dkimsign >> >> > So assuming that you actually installed opensmtpd-filter-dkimsign and > everything starts okay, you haven't put the public key in the DNS like > you claimed in your original e-mail. > $ dig +short txt s1._domainkey.agroena.org > $ >
Hello Martijn I changed the selector to s=s1 the same at DNS record, and my smtpd.conf with 2 lines related to dkim; and my mail is not spam anymore, thanks for your help; but it is not signed yet! Can you please help? # $OpenBSD: smtpd.conf,v 1.14 2019/11/26 20:14:38 gilles Exp $ # This is the smtpd server system-wide configuration file. # See smtpd.conf(5) for more information. table aliases file:/etc/mail/aliases listen on socket # To accept external mail, replace with: listen on all # listen on all action "local_mail" mbox alias <aliases> action "outbound" relay # Uncomment the following to accept external mail for domain "example.org" # # match from any for domain "example.org" action "local_mail" #match from any for domain "agroena.org" action "local_mail" match from local for local action "local_mail" match from local for any action "outbound" # dkim filter "dkimsign" proc-exec "filter-dkimsign -d agroena.org -s s1 -k /etc/mail/dkim/agroena.org.private.key" user _dkimsign group _dkimsign
